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ABSTRACT 

The  Semiconductor  Industry  Associates  (SIA)  estimates 
that  counterfeiting  costs  the  US  semiconductor  companies 
$7.5B  in  lost  revenue,  and  this  is  indeed  a  growing  global 
problem.  Repackaging  the  old  ICs,  selling  the  failed  test 
parts,  as  well  as  gray  marketing,  are  the  most  dominant 
counterfeiting  practices.  Can  technology  do  a  better  job 
than  lawyers?  What  are  the  technical  challenges  to  be  ad¬ 
dressed?  What  EDA  technologies  will  work:  embedding  IP 
protection  measures  in  the  design  phase,  developing  rapid 
post-  silicon  certification,  or  counterfeit  detection  tools  and 
methods? 
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1.  INTRODUCTION 

A  counterfeit  (fake)  product  is  an  illegal  forgery  or  imita¬ 
tion  of  an  original  design.  The  counterfeit  parts  intend  to 
fraudulently  deceive  consumers  by  pretending  to  be  genuine. 
A  2008  report  by  the  US  department  of  commerce  estimated 
counterfeiting  to  account  for  about  8%  of  the  global  mer¬ 
chandize  trade,  equivalent  to  lost  sales  of  as  much  as  600B 
in  2008,  and  expected  to  grow  to  1.2T  in  2009  [30].  Counter¬ 
feiting  of  microelectronics  components,  embedded  systems, 
and  computer  peripherals  is  a  common  practice  in  many 
parts  of  the  world. 

Estimates  for  IC  counterfeiting  losses  vary  greatly  depend¬ 
ing  on  the  source.  One  of  the  lowest  estimates  is  provided  by 
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SIA  at  $7.5  B.  Very  recently,  EE  Times  estimated  that  IC 
counterfeiting  losses  are  as  high  as  $  169  B  annually.  There¬ 
fore,  the  fake  parts  are  at  least  2.5%  of  the  annual  IC  sales 
and  are  significantly  larger  than  the  overall  EDA  revenues 
per  year.  Sources  of  fake  products  are  diverse,  ranging  from 
re-labeling  and  using  defective  components  to  illegal  over¬ 
building  by  manufacturers.  Conventional  chip  identification 
methods  such  as  printing  serial  numbers  and  burning  fuses 
can  be  forged  and  thus,  they  have  a  limited  effectiveness  in 
preventing  or  detecting  counterfeit  chips. 

Counterfeiting  is  a  particularly  important  problem  to  ad¬ 
dress  since  it  has  at  least  four  important  ramifications:  (i) 
the  original  IC  part  providers  incur  an  irrecoverable  loss  due 
to  the  sale  of  often  cheaper  counterfeit  components,  (ii)  low 
performance  of  counterfeit  products  (that  are  often  of  lower 
quality  and/or  cheaper  older  generations  of  a  chip  family) 
affects  the  overall  efficacy  of  the  integrated  systems  that  un¬ 
intentionally  use  them;  this  could  in  turn  harm  the  reputa¬ 
tion  of  authentic  providers,  (iii)  unreliability  of  fake  devices 
could  render  the  integrated  systems  that  unknowingly  use 
the  parts  unreliable;  this  potentially  affects  the  performance 
of  weapons,  airplanes,  cars  or  other  crucial  applications  that 
use  the  fake  components  [36] ,  and  (iv)  untrusted  fake  compo¬ 
nents  may  have  intentional  malware  or  some  backdoors  for 
spying  information  or  remotely  controlling  critical  objects. 

The  rising  trends  in  chip  counterfeiting  and  its  important 
consequences  clearly  motivate  the  urgent  need  for  develop¬ 
ment  of  advanced  IC  anti-counterfeiting  techniques.  In  this 
paper,  we  discuss  the  present  state  of  IC  anti-counterfeiting 
practice  and  research,  technical  challenges,  and  some  poten¬ 
tial  EDA  research  and  development  directions  for  addressing 
the  open  problems. 

2.  PRESENT  ANTI-COUNTERFEITING 
PRACTICES  AND  EFFORTS 

Fake  electronic  parts  have  been  a  known  issue  since  the 
early  days  of  IC  design  and  fabrication.  The  IC  companies 
and  government  organizations  have  been  aware  of  the  occa¬ 
sional  counterfeit  incidents.  Therefore,  a  preliminary  set  of 
guidelines  and  legal  procedures  are  typically  in  place  for  han¬ 
dling  the  counterfeit  subjects.  The  increasing  growth  of  the 
number  of  counterfeit  parts  and  the  ascending  potential  risk 
of  exploits  have  recently  raised  the  awareness  of  this  preva¬ 
lent  problem.  In  November  2011,  the  US  Senate  Armed 
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Services  Committee  held  a  hearing  to  address  the  growing 
issue  of  counterfeit  parts  in  the  U.S.  military  supply  chain. 
Senator  John  McCain  of  Arizona,  the  committeeSs  ranking 
Republican,  and  Senator  Carl  Levin  of  Michigan,  committee 
chairman,  were  among  the  officials  who  investigated  defense 
contractors  about  the  rising  number  of  detected  counter¬ 
feits  in  the  supply  chain.  The  two  senators  have  used  the 
2012  Defense  Authorization  Act  to  alter  acquisition  guide¬ 
lines  and  make  contractors  responsible  for  the  expenses  of 
replacing  the  fake  components. 

Until  now,  only  a  handful  of  industrial/research  labs,  and 
government/military  agencies  and  contractors  have  a  set  of 
more  technical  procedures  for  electronic  counterfeit  preven¬ 
tion  and  detection,  which  are  often  classified.  In  the  re¬ 
mainder  of  this  section,  we  briefly  summarize  four  major 
industrial,  research  lab,  government  and  defense  agencies’ 
anti-counterfeiting  approaches  and  initiatives. 

The  Navy  lab  defines  counterfeit  parts  in  two  broad  cat¬ 
egories:  New  parts  that  are  misrepresented  and  old  parts 
that  are  sold  as  new.  One  can  envision  testability  and  inte¬ 
grated  identification  methods  and  quantify  them  in  terms  of 
practicality,  cost,  and  accessibility  beyond  factory  produc¬ 
tion  tests.  The  key  challenge  is  to  develop  methods  for  at- 
speed  functional  test  and  parametric  characterization  avail¬ 
able  and  easily  implementable  for  non-factory  test  screen- 
ers  as  well  as  methods  for  better  detecting  aging  and  other 
usage/improper  handling  induced  stresses  in  parts.  One 
can  point  out  that  these  challenges  exist  for  digital,  mixed- 
signal,  and  analog  parts.  It  is  important  to  identify  perils 
from  a  security  point  of  view  of  allowing  the  end  user  greater 
insight  into  the  IC  through  testability. 

A  different  path  is  taken  by  Analytical  Solutions,  Inc.,  an 
independent  company  which  provides  analyses  of  complex 
electronic  devices  related  to  commercial,  military,  medical, 
security,  and  space  applications  [38].  The  company  offers  a 
“Five  Tier  Approach”  to  counterfeit  detection  to  meet  the 
specific  needs  of  the  customer,  summarized  in  Table  1.  This 
“Five  Tier  Approach”  gives  customers  the  options  that  may 
be  required  to  evaluate  and  validate  that  the  electronic  part 
or  device  is  not  a  counterfeit  product  and  provide  users  the 
trust  they  need  in  the  production  or  manufacturing  of  high 
reliability  products. 

Researchers  at  IBM  have  developed  a  new  technique  for 
detecting  chip  alterations  using  intrinsic  light  emission  in 
combination  with  electrical  tests.  This  method  is  based  on 
the  fact  that  any  active  device  emits  infrared  light  emission 
when  it  is  powered  on  or  operational.  High  sensitivity  pho¬ 
ton  detectors  can  be  employed  to  capture  the  weak  emission 
while  the  chip  under  evaluation  is  powered  on  and  electric 
stimuli  are  applied  to  it.  In  particular,  two  main  families  of 
electrical  test  modes,  static  and  dynamic,  can  be  applied.  It 
has  been  demonstrated  that  combining  the  optical  diagnos¬ 
tics  and  electrical  tests  significantly  increases  the  delectabil- 
ity  of  the  malicious  circuits.  The  optical  tool  of  choice  that 
is  used  for  this  method  is  Picosecond  Imaging  Circuit  Analy¬ 
sis  (PICA),  originally  developed  for  diagnosing  time-critical 
IC  failures.  This  tool  can  measure  time-resolved  emission 
from  switching  gates,  as  well  as  time-integrated  and  time- 
resolved  from  gates  in  fixed  logic  state,  also  known  as  Light 
Emission  from  Off-State  Leakage  Current  (LEOSLC).  The 
approach  resulted  in  many  positive  results,  including  high 
spatial  resolution  image  processing  and  data  interpretation. 

IC  anti-counterfeiting  has  been  well  recognized  by 


DARPA  as  a  strategically  important  and  a  necessary  tech¬ 
nology.  For  example,  the  original  active  hardware  metering 
for  IC  piracy  prevention  and  anti-counterfeiting  was  sup¬ 
ported  by  a  DARPA/MTO  program  [1].  As  another  exam¬ 
ple,  the  objectives  of  the  ongoing  DARPA/MTO  Integrity 
and  Reliability  of  Integrated  Circuits  (IRIS)  program  is  to 
develop  the  technology  to  derive  the  functionality  of  an  IC 
to  determine  unambiguously  if  malicious  modifications  have 
been  made  to  that  IC,  and  to  accurately  determine  the  IC’s 
useful  lifespan  and  reliability  from  a  physical  perspective 
[39].  While  the  IRIS  program  is  still  in  an  early  phase, 
it  is  expected  to  provide  new  research  results  and  advance 
the  state-of-the-art  of  IC  trust  and  anti-counterfeiting  tech¬ 
niques. 

3.  RESEARCH  CHALLENGES 

Development  of  newer  and  more  efficient  IC  anti¬ 
counterfeiting  techniques  is  exceedingly  interesting  from  sci¬ 
entific  and  engineering  viewpoints.  There  are  a  number  of 
challenging  tasks  that  require  not  just  implementation,  de¬ 
sign,  algorithmic,  and  modeling  innovations,  but  also  con¬ 
ceptual  breakthroughs  that  may  greatly  benefit  future  gen¬ 
erations  of  ICs.  This  difficulty  and  richness  is  a  consequence 
of  the  confluence  of  several  technological,  security,  and  de¬ 
sign  aspects,  including: 

•  Ultra  large  scale  of  integration.  Modern  and  future 
chips  have  a  surprising  number  of  subcomponents,  in 
the  order  of  billions.  Failure  or  performance  degra¬ 
dation  of  each  subcomponent  may  result  in  an  overall 
system  failure.  Although  the  need  to  simultaneously 
consider  so  many  components  is  a  nontrivial  challenge, 
it  may  in  some  situations  facilitate  counterfeiting  de¬ 
tection.  For  example,  to  show  that  a  chip  was  already 
significantly  used,  it  suffices  to  verify  that  any  part  of 
the  chip  was  considerably  used. 

•  Limited  controllability  and  observability.  It  is  well 
known  that  the  ratio  of  the  number  of  transistors  vs. 
the  number  of  inputs/outputs  has  been  continuously 
increasing  over  time.  For  example,  this  ratio  was 
around  a  hundred  for  the  first  generations  of  proces¬ 
sors,  while  it  is  more  than  a  million  for  contemporary 
processors.  Thus,  it  is  increasingly  more  difficult  to 
organize  any  type  of  testing  in  modern  ICs. 

•  Identification  and  accessing  System-on-a-Chip  (SoC) 
subcomponents.  In  case  a  complex  SoC  with  multiple 
subcomponents  is  being  investigated,  typically  optical 
investigations  are  needed  for  identifying  and  accessing 
the  subparts  to  be  individually  tested.  Most  modern 
SoC  designs  are  packaged  using  flip  chip  technology 
and  a  heat  spreader  which  have  to  be  removed  for  op¬ 
tical  evaluations.  There  is  a  need  to  develop  more 
advanced  optical  methods  that  not  only  identify  the 
IP  subparts,  but  also  can  classify  the  type  of  IP  (e.g., 
RF  front-end,  A2D,  memory,  etc.)  and  find  the  test 
ports  and  scan  chains  to  each  subcomponent  in  an  au¬ 
tomated  manner. 

•  Functional  identification  and  reverse  engineering.  The 
effective  lifetime  of  an  airplane  or  a  tank  may  span 
over  several  decades,  while  the  average  lifespan  of  the 
underlying  electronic  components  is  typically  much 
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Table  1:  “Five  Tier  Approach”  to  counterfeit  detection  from  Analytical  Solutions. 


shorter.  Therefore,  to  maintain  the  costly  equipment 
or  automotive/avionic  systems,  failed  electronics  must 
be  replaced.  A  standing  problem  is  the  lack  of  suffi¬ 
cient  documentation/description  of  the  failed  compo¬ 
nents.  This  may  be  because  of  the  long  supply  chains, 
or  part  obsoleteness.  In  lieu  of  this  information,  one 
must  reverse-engineer  the  target  failed  component  us¬ 
ing  other  working  instances.  Development  of  auto¬ 
mated  methods  and  tools  for  functional  identification 
and  IC  reverse  engineering  is  a  major  research  chal¬ 
lenge. 

•  Interdisciplinary  nature  of  problems.  Anti¬ 

counterfeiting  requires  knowledge  and  skills  in 
several  domains  including  IC  technology,  design, 
EDA,  testing,  security,  statistical  analysis,  and  game 
theory.  Hence,  continuous  educational  efforts  are 
needed. 

•  Variety  of  (unpredictable)  attacks.  It  is  often  not  easy 
to  develop  sound,  comprehensive,  and  practical  de¬ 
fenses  against  known  attacks.  The  situation  becomes 
much  more  challenging  when  the  attacks  are  difficult 
to  predict. 

•  Process  variation  and  device  aging.  Although  the  se¬ 
curity  aspects  are  obviously  the  most  challenging  and 
difficult  to  address,  recent  history  teaches  us  that  pro¬ 
cess  variation  and  device  aging  models  are  critical  for 
effective  research  and  studies.  On  one  side,  they  en¬ 
able  development  of  conceptually  new  security  mech¬ 
anisms  such  as  physical  unclonable  functions  (PUFs). 
On  the  other  hand,  they  also  directly  invalidate  numer¬ 
ous  hardware  security  approaches  that  assume  unform 
temporal  and  spacial  characteristics  of  similar  elements 
across  one  chip.  Luckily,  in  terms  of  developing  new 
anti-counterfeiting  techniques,  such  imperfections  can 
be  essential  and  positive. 

Furthermore,  there  is  a  large  spectrum  of  IC  counterfeiting 
and  anti-counterfeiting  problems.  They  are  related  to  issues 
relevant  to  contracts  between  an  IC  seller  and  buyer  and 
fulfillment  of  all  contractual  agreements,  including  ones  that 
may  not  be  explicitly  stated.  Currently  popular  exploits 
include  reselling  old  ICs,  selling  lower  performance  chips  as  a 
higher  performance  model,  and  selling  untested  or  defective 
ICs  [30]. 


4.  RELATED  WORK 

In  this  Section,  we  briefly  summarize  the  related  con¬ 
cepts  which  directly  influence  the  research  and  development 
of  advanced  IC  anti-counterfeiting  methods.  A  closely  re¬ 
lated  line  of  research  is  focused  on  detection  of  IC  Trojans; 
such  methods  are  exceptionally  relevant  when  the  counter¬ 
feit  components  introduce  an  exploit  in  the  system.  Due  to 
space  constraints,  we  do  not  discuss  Trojan  detection  and 
prevention  in  this  paper.  Instead,  we  refer  the  interested 
readers  to  a  comprehensive  survey  on  this  topic  [28]. 

4.1  IP  Watermarking 

A  watermark  embeds  a  hidden  signature  in  the  chip  at 
the  design  time  [3,  29].  The  signature  is  checked  against 
its  intended  attributes  for  authenticity  verification.  Water¬ 
marking  at  different  levels  of  design  abstraction  is  useful  and 
necessary,  in  particular  for  designs  with  multiple  IPs  where 
the  IP  infringement  tracking  is  a  challenging  task.  A  water¬ 
mark  can  identify  a  design,  and  not  individual  IC  instances. 
It  can  become  useful  for  tracking  stolen  design  IPs  in  the 
supply  chain. 

4.2  Hardware  Metering  and  Auditing 

IC  metering  or  hardware  metering  refers  to  tools,  method¬ 
ologies,  and  protocols  that  enable  post-fabrication  tracking 
of  the  ICs.  Metering  can  differentiate  legitimate  hardware 
from  pirated  ones.  Research  efforts  have  been  focused  on 
how  to  generate  a  unique  ID  for  a  specific  device.  Hardware 
metering  may  be  passive,  or  active.  In  passive  metering, 
the  ICs  are  specifically  identified,  either  in  terms  of  their 
functionality,  or  by  other  forms  of  unique  identification  [4]. 
The  identified  ICs  may  be  matched  against  their  record  in 
a  pre-formed  database  that  could  reveal  unregistered  ICs  or 
overbuilt  ICs  (in  case  of  collisions).  In  active  metering,  not 
only  the  ICs  are  uniquely  identified,  but  also  parts  of  the 
chipSs  functionality  can  be  only  accessed,  locked  (disabled), 
or  unlocked  (enabled)  by  the  designer  and/or  IP  rights  own¬ 
ers  using  a  high  level  knowledge  of  the  design  not  transferred 
to  the  foundry  [1], 

Metering  methods  may  also  be  classified  as  intrinsic  or 
extrinsic :  (i)  Intrinsic  hardware  metering  leverages  process 
variation  to  create  unique  fingerprints  by  using  the  existing 
properties  or  side  channels  of  the  device,  such  as  delay  and 
power.  Several  approaches  have  been  proposed  to  character¬ 
ize  the  gate-level  IC  properties  for  hardware  metering  pur- 


pose  [5]  [6]  [7]  [8] .  Intrinsic  metering  methods  are  inherently 
passive,  (ii)  Extrinsic  hardware  metering  inserts  additional 
hardware  or  software  components  to  the  device  for  ID  gen¬ 
eration  [2]  [4].  The  additional  components  can  be  configured 
to  produce  a  unique,  difficult  to  predict  or  clone  fingerprint 
for  each  authentic  device.  Extrinsic  metering  methods  may 
be  passive  or  active. 

There  is  a  natural  way  to  establish  a  connection  be¬ 
tween  hardware  metering  and  IC  anti-counterfeiting  tech¬ 
niques.  The  simple  but  powerful  observation  is  that  once 
a  chip  is  identified  by  hardware  metering  techniques,  then 
the  foundry  or  other  reliable  sources  can  be  contacted  for 
obtaining  more  information  about  the  IC  such  as  the  man¬ 
ufacturing  date  and  the  original  buyer. 

4.3  Physical  Unclonable  Functions  (PUFs) 

Physical  unclonable  functions  (PUFs)  are  one  potential 
candidate  stricture  for  implementing  the  unique  extrinsic 
IC  identifiers.  A  PUF  is  a  physical  function  that  provides 
a  mapping  between  its  inputs  and  outputs  based  on  the 
unique  fluctuations  in  the  unclonable  device  material  prop¬ 
erties  such  as  timing  or  current.  The  PUF  input  vector  is 
typically  called  a  challenge  and  the  PUF  output  vector  is 
commonly  called  a  response.  To  ensure  security,  the  map¬ 
ping  should  be  such  that  responses  can  be  rapidly  evaluated, 
but  they  are  hard  to  model,  characterize,  clone,  or  repro¬ 
duce.  PUFs  have  been  proposed  for  both  ASIC  and  FPGAs 
[22,  23,  26,  37,  27].  Comprehensive  summaries  and  more 
detailed  definition/classification  of  PUFs  can  be  found  in 
[31,  32].  Very  little  is  known  about  industrial  practices  of 
authentic  chip  identification.  An  approach  by  Sun  Microsys¬ 
tems  was  proposed  where  they  use  the  unique  EM  radiation 
from  each  chip  to  establish  its  authenticity  [24]. 


4.4  Device  Aging  Models 

Natural  phenomena  such  as  negative  bias  temperature  in¬ 
stability  (NBTI)  cause  the  aging  of  devices  in  form  of  thresh¬ 
old  voltage  increase.  As  a  result,  the  IC  structural  proper¬ 
ties  such  as  delay  and  power  would  be  impacted  significantly, 
which  cause  degradation  in  the  device  lifetime.  In  order  to 
evaluate  and  predict  the  increase  of  threshold  voltages  and, 
consequently  the  failure  time,  several  quantitative  models 
have  been  proposed.  The  time  dependence  of  Vth  shift  fol¬ 
lows  fractional  power  law  of  the  stress  time  [9] ,  as  shown  in 
the  following  equation: 

A Vth  =  A  ■  exp(/3Va)  ■  exp(—Ea/kT)  •  t0'25  (1) 


where  VG  is  the  applied  gate  voltage;  A  and  /3  are  constants; 
Ea  is  the  measured  activation  energy  of  the  NBTI  process; 
T  is  the  temperature;  and  t  is  the  stress  time. 

Due  to  the  increase  of  threshold  voltages,  the  aging  pro¬ 
cess  significantly  impacts  IC’s  structural  properties.  For  ex¬ 
ample,  the  leakage  energy  of  a  logic  gate  exponentially  de¬ 
creases  with  the  increase  of  threshold  voltage,  as  indicated 
by  the  leakage  current  model  [10]: 
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where  L  is  effective  channel  length,  Vth  is  threshold  voltage, 
W  is  gate  width,  Vdd  is  supply  voltage,  n  is  subthreshold 
slope,  p  is  mobility,  Cox  is  oxide  capacitance,  <fit  is  thermal 
voltage  <f>t  =  kT/q ,  and  a  is  drain  induced  barrier  lowering 
(DIBL)  factor. 


On  the  other  hand,  delay  of  a  logic  gate  increases  in  a 
close-to-linear  manner  with  aging,  as  shown  by  the  following 
delay  model  [10]: 
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where  subscripts  i  and  i+ 1  represent  the  the  driver  and  load 
gates,  respectively;  7  is  the  ratio  of  gate  parasitic  to  input 
capacitance;  and  ktp  and  kftt  are  fitting  parameters. 


4.5  Device  Degradation 

IC  lifetime  is  influenced  by  a  variety  of  phenomena  that 
have  been  studied  by  the  material  science  and  semiconductor 
communities,  including  electromigration  (EM)  [11],  stress 
migration  (SM)  [12],  time  dependent  dielectric  breakdown 
(TDDB)  [13],  thermal  cycling  (TC)  [14],  oxide  breakdown 
[9],  vertical  interconnect  access  (VIA)  [15]  [16],  negative  bias 
temperature  instability  (NBTI)  [171,  and  liot-carrier  injec¬ 
tion  (HCI)  [18]  [19]. 

Electromigration  is  the  transport  of  interconnect  mate¬ 
rial  (copper  in  modern  designs)  due  to  high  density  electric 
currents,  i.e. ,  movement  of  ions  that  alters  the  conductiv¬ 
ity  of  an  interconnect.  The  ramifications  include  physical 
disconnection  of  wires  or  failure  of  the  overall  IC  to  func¬ 
tion  correctly  due  to  increase  in  wire  delays.  Closely  related 
thermomigration  has  high  impact  on  reliability  of  vias  in 
particular  in  new  technologies  that  do  not  use  lead  (Pb). 
Thermomigration  moves  metal  material  due  to  the  under¬ 
lying  thermal  gradient.  Thermomigration  is  also  related  to 
stress  migration  where  the  difference  in  temperature  creates 
thermo-mechanical  stress  due  to  different  expansion  rates  of 
various  materials  in  the  IC. 

Dielectric  breakdown  is  a  process  where  dielectric  around 
wires  develops  cracks  that  drastically  change  its  dielectric 
properties  to  the  extent  that  it  does  not  serve  as  an  isola¬ 
tor  anymore.  Stress  migration  is  a  phenomenon  where  the 
metal  atoms  in  the  interconnects  migrate  due  to  mechani¬ 
cal  stress,  much  like  electromigration.  Stress  migration  is 
caused  by  thermo-mechanical  stresses  which  are  caused  by 
differing  thermal  expansion  rates  of  different  materials  in 
the  device.  Thermal  cycling  is  a  phenomenon  where  the 
temperature  of  an  IC  or  its  parts  is  subject  to  high  and 
rapid  changes.  It  causes  permanent  damages  that  accumu¬ 
late  every  time  there  is  a  cycle  in  the  processor  temperature, 
eventually  leading  to  failures. 

4.6  Aging  Sensors 

Accurate  performance-degradation  monitoring  of  CMOS 
circuits  is  one  of  the  most  critical  issues  for  adaptive  de¬ 
sign  techniques.  Therefore,  in  addition  to  modeling  and 
studies  of  aging,  additional  on-chip  aging  sensors  can  be 
implemented  to  monitor  and  report  aging  and  reliability. 
Because  of  the  increasing  importance  of  this  topic,  various 
methods  for  realizing  on-chip  aging  sensors  have  been  re¬ 
cently  proposed,  including  [33,  34,  35]:  [33]  proposed  a  tech¬ 
nique  to  measure  the  beat  frequency  of  two  ring  oscillators, 
one  stressed  and  the  other  unstressed,  to  a  very  high  delay 
sensing  resolution  for  aging  differentiation;  [34]  introduced 
two  compact  structures  to  digitally  quantify  the  change  in 
performance  and  power  of  devices  undergoing  NBTI  and 


defect-induced  oxide  breakdown.  The  small  size  of  the  sen¬ 
sors  makes  them  amenable  to  use  in  a  standard-cell  design 
with  low  area  and  power  overhead;  [35]  deployed  a  threshold 
voltage  detector  for  monitoring  the  performance  degradation 
of  an  aged  MOSFET.  Developing  more  sophisticated  sens¬ 
ing  methods  with  a  higher  resolution  aging  differentiation 
can  directly  advance  the  state-of-the-art  anti-counterfeiting 
techniques.  The  relevant  EDA  research  is  to  find  the  best 
placement  of  each  sensor  type  on  the  chip  to  maximize  age 
sensing  coverage  while  minimizing  the  overall  sensor  over¬ 
head/cost. 

4.7  System  Failures 

System  failure  has  become  a  major  concern  in  hardware- 
based  system  design,  especially  with  the  rapid  growth  in 
nanoscale  technologies  where  power  and  temperature  sig¬ 
nificantly  increase  due  to  the  transistor  scaling.  Therefore, 
prediction  and  evaluation  of  system  failure  has  drawn  a  great 
deal  of  attention  from  both  industry  and  academic  commu¬ 
nities.  Srinivasan  et  al.  [20]  introduced  a  reliability-aware 
microprocessor  (RAMP)  design  model  to  predict  and  eval¬ 
uate  the  mean  time  to  failure  resulting  from  different  com¬ 
ponents  of  the  system,  such  as  applications,  system  archi¬ 
tectures,  and  processor  designs.  They  further  extended  the 
RAMP  model  to  evaluate  the  system  failure  caused  by  tech¬ 
nology  scaling.  In  particular,  estimates  the  mean  times  to 
failure  (MTTF)  of  devices  due  to  various  aging  phenomena 
can  be  found  in  [20]. 

5.  IC  ANTI-COUNTERFEITING  TECH¬ 
NIQUES:  CASE  STUDIES 

Our  goal  in  this  section  is  to  provide  additional  impetus 
for  development  of  design  automation  techniques  and  tools 
for  fighting  counterfeiting  techniques.  While  we  do  not  dis¬ 
cuss  a  detail  presentation  of  any  of  the  proposed  techniques 
and  do  not  show  any  security  proofs,  we  believe  that  read¬ 
ers  will  find  non-trivial  IC  counterfeiting  ideas  and  starting 
points  for  the  development  of  industrial-strength  practical 
and  fundamentally  sound  methods. 

5.1  Techniques  for  Integrated  Circuit  Age 
Characterization 

The  threshold  voltage  of  each  CMOS  transistor  is  a  func¬ 
tion  of  the  number  of  dopants  injected  during  manufacturing 
and  the  number  of  bonds  that  are  broken  during  IC  oper¬ 
ation.  The  first  component  is  subject  to  process  variation 
and  essentially  follows  an  exponential  distribution.  The  level 
of  spatial  correlation  is  exceedingly  low  to  the  extent  that 
the  threshold  voltages  of  different  transistors  can  be  con¬ 
sidered  independent  for  any  pair  of  transistors.  The  aging 
of  PMOS  transistors  is  due  to  chemical  structure  and  is  by 
an  order  of  magnitude  faster  than  the  aging  of  their  NMOS 
counterparts.  There  are  three  important  observations.  The 
first  is  that  device  aging  is  recoverable  to  a  significant  ex¬ 
tent  but  not  completely:  when  a  transistor  is  not  under 
stress  or  is  only  under  stress  for  a  small  percentage  of  time, 
its  threshold  voltage  reduces  at  an  exponentially  decreasing 
rate.  The  second  is  that  a  transistor  ages  when  it  is  under 
stress,  i.e.,  when  its  channel  acts  as  an  open  switch.  The 
third  important  piece  of  information  is  that  although  there 
are  techniques  for  extraction  of  threshold  voltage  [8],  such 
an  extraction  is  a  slow  and  expensive  procedure  unless  it  is 


restricted  to  a  relatively  few  transistors. 

A  particularly  important  question  is  whether  a  chip  is 
essentially  new  or  has  been  used  for  a  significant  amount 
of  time.  If  used,  the  distribution  of  threshold  variations 
would  be  far  from  the  expected  foundry  models.  Noninva- 
sive  IC  characterization  methods  can  be  used  for  determin¬ 
ing  the  post-silicon  distribution  and  correlations  among  the 
threshold  voltages.  Statistical  outlier  detection  methods  can 
determine  if  the  measured  distributions  or  correlations  sig¬ 
nificantly  deviate  from  the  expected  characteristics  of  new 
chips. 

5.2  Design  for  Counterfeit  Detection  (DCD) 

In  testing  and  testing-related  research  and  development 
fields,  it  is  a  standard  practice  that  after  each  successful  de¬ 
velopment  of  a  set  of  techniques  that  utilize  new  technologies 
or  new  conceptual  insights,  the  next  phase  is  to  develop  ap¬ 
proaches  that  incorporate  these  mechanisms  into  the  design 
flow.  We  expect  that  a  major  rise  of  the  practical  impor¬ 
tance  of  anti-counterfeiting  techniques  will  be  provided  by 
the  need  for  management  of  chips  that  use  ultra-high  levels 
of  integration.  Cutting  edge  ICs  have  already  approached 
about  10  billion  transistors  per  chip;  it  is  unrealistic  to  ex¬ 
pect  high  yields  and  long  expected  lifetimes.  For  example, 
one  can  easily  envision  that  some  types  of  maintenance  will 
be  required,  at  least  in  form  of  occasional  adjustment  of 
reverse  and  forward  body  biasing,  to  compensate  for  device 
aging  or  high  operational  temperatures.  Thus,  we  anticipate 
that  DCD  approaches  will  share  both  the  techniques  and  re¬ 
sources  with  IC  characterization  and  maintenance  methods. 

An  excellent  example  of  one  such  maintenance  technique 
has  been  developed  by  Mitra’s  research  group  at  Stanford 
[25] .  They  have  developed  a  low  cost  approach  for  measuring 
device  aging  and  therefore  slowdown  of  gates  on  the  critical 
paths  of  an  IC.  This  approach  is  also  important  because  it 
uses  only  differential  time  measurements  and  induces  very 
low  hardware  and  energy  overheads.  It  is  relatively  easy 
to  re-target  architectural  primitives  and  measurements  for 
detection  of  old  chips  using  one  of  the  techniques  described 
in  the  previous  subsection. 

6.  CONCLUSION 

Counterfeiting  of  electronic  components  is  a  growing  il¬ 
legal  business  with  important  economical,  military,  govern¬ 
mental,  and  industrial  ramifications.  Repackaging  the  old 
ICs,  selling  the  failed  test  parts,  as  well  as  gray  market¬ 
ing,  are  the  most  dominant  counterfeiting  practices.  Sur¬ 
prisingly,  although  recently  many  aspects  of  hardware  re¬ 
lated  security  have  been  extensively  studied,  there  has  been 
very  little  IC  counterfeiting  research.  Creation  of  IC  anti¬ 
counterfeiting  techniques  poses  numerous  and  diverse  chal¬ 
lenges  while  it  also  has  the  potential  to  address  a  spectrum  of 
important  IC  design,  management,  and  maintenance  prob¬ 
lems.  We  have  analyzed  the  currently  most  popular  IC  coun¬ 
terfeiting  attacks  and  identified  the  most  important  IC  anti¬ 
counterfeiting  desiderata.  To  make  the  paper  self-contained, 
we  presented  the  most  relevant  related  technologies.  The 
technical  highlight  of  the  paper  are  vignettes  of  two  ap¬ 
proaches  for  fighting  IC  counterfeiting  using  EDA  techniques 
and  a  brief  summary  of  presently  available  industrial  and 
government  methods. 
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